Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 24, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
229561 2.6 注意 xrms - XRMS CRM におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-3398 2012-12-20 18:52 2008-07-31 Show GitHub Exploit DB Packet Storm
229562 4.3 警告 runesoft - Runesoft Cerberus CMS におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-3397 2012-12-20 18:52 2008-07-31 Show GitHub Exploit DB Packet Storm
229563 5.8 警告 webwizguide - Web Wiz Forum におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2008-3392 2012-12-20 18:52 2008-07-31 Show GitHub Exploit DB Packet Storm
229564 4.3 警告 webwizguide - Web Wiz Forum におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-3391 2012-12-20 18:52 2008-07-31 Show GitHub Exploit DB Packet Storm
229565 7.5 危険 phpfootball - PHPFootball の show.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3387 2012-12-20 18:52 2008-07-30 Show GitHub Exploit DB Packet Storm
229566 4.3 警告 snarky - Snark VisualPic におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-3379 2012-12-20 18:52 2008-07-30 Show GitHub Exploit DB Packet Storm
229567 7.5 危険 talkback - TalkBack の install/help.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-3371 2012-12-20 18:52 2008-07-30 Show GitHub Exploit DB Packet Storm
229568 7.5 危険 viart - ViArt Shop の products_rss.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3369 2012-12-20 18:52 2008-07-30 Show GitHub Exploit DB Packet Storm
229569 4.3 警告 webwizguide - Web Wiz RTE の RTE_popup_link.asp におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-3367 2012-12-20 18:52 2008-07-30 Show GitHub Exploit DB Packet Storm
229570 7.5 危険 Pligg - Pligg CMS の story.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3366 2012-12-20 18:52 2008-07-30 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 24, 2026, 4:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
209171 8.8 HIGH
Network 		matio_project matio Integer overflow vulnerability in Mat_VarReadNextInfo5 in mat5.c in tbeu matio (aka MAT File I/O Library) 1.5.17, allows attackers to cause a Denial of Service or possibly other unspecified impacts. CWE-190
 Integer Overflow or Wraparound 		CVE-2020-19497 2024-11-21 14:09 2021-07-22 Show GitHub Exploit DB Packet Storm
209172 7.8 HIGH
Local 		sam2p_project sam2p There is a floating point exception in ReadImage that leads to a Segmentation fault in sam2p 0.49.4. A crafted input will lead to a denial of service or possibly unspecified other impact. NVD-CWE-noinfo
CVE-2020-19492 2024-11-21 14:09 2021-07-22 Show GitHub Exploit DB Packet Storm
209173 7.8 HIGH
Local 		sam2p_project sam2p There is an invalid memory access bug in cgif.c that leads to a Segmentation fault in sam2p 0.49.4. A crafted input will lead to a denial of service or possibly unspecified other impact. CWE-787
 Out-of-bounds Write 		CVE-2020-19491 2024-11-21 14:09 2021-07-22 Show GitHub Exploit DB Packet Storm
209174 5.5 MEDIUM
Local 		tinyexr_project tinyexr tinyexr 0.9.5 has a integer overflow over-write in tinyexr::DecodePixelData in tinyexr.h, related to OpenEXR code. CWE-190
 Integer Overflow or Wraparound 		CVE-2020-19490 2024-11-21 14:09 2021-07-22 Show GitHub Exploit DB Packet Storm
209175 5.5 MEDIUM
Local 		gpac gpac An issue was discovered in box_code_apple.c:119 in Gpac MP4Box 0.8.0, allows attackers to cause a Denial of Service due to an invalid read on function ilst_item_Read. CWE-476
 NULL Pointer Dereference 		CVE-2020-19488 2024-11-21 14:09 2021-07-22 Show GitHub Exploit DB Packet Storm
209176 5.5 MEDIUM
Local 		gpac gpac An issue was discovered in GPAC before 0.8.0, as demonstrated by MP4Box. It contains an invalid memory read in gf_m2ts_process_pmt in media_tools/mpegts.c that can cause a denial of service via a cra… CWE-125
Out-of-bounds Read 		CVE-2020-19481 2024-11-21 14:09 2021-07-22 Show GitHub Exploit DB Packet Storm
209177 5.5 MEDIUM
Local 		flowpaper pdf2json An issue has been found in function CCITTFaxStream::lookChar in PDF2JSON 0.70 that allows attackers to cause a Denial of Service due to an invalid write of size 2 . CWE-787
 Out-of-bounds Write 		CVE-2020-19475 2024-11-21 14:09 2021-07-22 Show GitHub Exploit DB Packet Storm
209178 5.5 MEDIUM
Local 		flowpaper pdf2json An issue has been found in function Gfx::doShowText in PDF2JSON 0.70 that allows attackers to cause a Denial of Service due to an Use After Free . CWE-416
 Use After Free 		CVE-2020-19474 2024-11-21 14:09 2021-07-22 Show GitHub Exploit DB Packet Storm
209179 5.5 MEDIUM
Local 		flowpaper pdf2json An issue has been found in function DCTStream::decodeImage in PDF2JSON 0.70 that allows attackers to cause a Denial of Service due to an uncaught floating point exception. CWE-755
 Improper Handling of Exceptional Conditions 		CVE-2020-19473 2024-11-21 14:09 2021-07-22 Show GitHub Exploit DB Packet Storm
209180 5.5 MEDIUM
Local 		flowpaper pdf2json An issue has been found in function DCTStream::readHuffSym in PDF2JSON 0.70 that allows attackers to cause a Denial of Service due to an invalid read of size 2 . CWE-125
Out-of-bounds Read 		CVE-2020-19472 2024-11-21 14:09 2021-07-22 Show GitHub Exploit DB Packet Storm